CVE-2026-4994 in OpenUIالمعلومات

الملخص

بحسب MITRE • 28/03/2026

A vulnerability was found in wandb OpenUI up to 1.0/3.5-turb. Affected is the function generic_exception_handler of the file backend/openui/server.py of the component APIStatusError Handler. The manipulation of the argument key results in information exposure through error message. Access to the local network is required for this attack. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Once again VulDB remains the best source for vulnerability data.

مسؤول

VulDB

إفشاء

28/03/2026

الاعتدال

تمت الموافقة

إدخال

VDB-353881

استغلال

تحميل

EPSS

0.00198

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!